This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft File: LKyEzuxXs1-jlTSuIwCa6oICOao.mft (raw, json) Hash identifier: m8AfStwa54yQ3NcfvKcPIZMyCVZvFclir/PiyHO4VH0= Subject key identifier: 65:BD:1E:B1:44:80:79:90:13:82:18:03:F9:D5:F8:9C:C1:07:80:66 Authority key identifier: 2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA Certificate issuer: /CN=2cac84ceec57b35fa39534ae23009aea820239aa Certificate serial: 019B454A4899C00F11B7F95A22B472CB3B10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft Manifest number: 09B2 Signing time: Mon 22 Dec 2025 09:00:54 +0000 Manifest this update: Mon 22 Dec 2025 09:00:54 +0000 Manifest next update: Tue 23 Dec 2025 09:00:54 +0000 Files and hashes: 1: LKyEzuxXs1-jlTSuIwCa6oICOao.crl (hash: CYItlP2YXArUPVtivRgou6qmXNcM41AZMK3COqLRbTc=) 2: cj0dff8EdsGG8DaopETeofzcldw.roa (hash: 06o/5+ZmJQt03Z2LLNo5k4a7U1bSw5gDTRAuW+tjkok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:4a:48:99:c0:0f:11:b7:f9:5a:22:b4:72:cb:3b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cac84ceec57b35fa39534ae23009aea820239aa Validity Not Before: Dec 22 09:00:54 2025 GMT Not After : Dec 23 09:00:54 2025 GMT Subject: CN=65bd1eb14480799013821803f9d5f89cc1078066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c3:4d:77:2c:b4:94:2a:b7:91:d7:3b:a4:47: 3e:44:2a:01:96:a3:4d:c0:77:d6:90:1d:bf:5a:8e: f9:b8:fb:33:2e:fd:91:70:62:6d:93:1e:d8:33:06: 5d:f8:b4:fc:50:fe:a5:51:55:a9:2b:38:50:c4:1a: 9b:57:ae:47:49:51:44:63:cb:1f:a4:ec:65:37:72: 2e:e5:d0:3c:55:a1:70:36:c5:5e:f2:8d:a8:a6:fb: df:2a:f6:7d:5f:34:e8:87:49:56:e9:79:57:f9:73: f6:7c:3f:6c:22:eb:41:a6:f7:6c:2c:cd:f2:cf:6e: 87:20:fd:a8:68:3d:65:51:7c:3d:44:9f:a2:2d:2c: c9:55:e5:03:23:a5:49:25:00:2f:9c:a2:15:c2:00: fc:d4:12:78:ae:10:85:b6:44:5c:3a:29:e3:84:be: 52:2f:d9:83:07:5f:78:ba:58:f6:8a:40:6e:21:96: 4a:d2:1c:b2:ff:90:91:a2:27:c2:4c:36:58:64:fa: 63:de:38:df:d1:72:c6:8b:71:77:ad:0f:ad:23:3a: 3e:36:fb:b2:0c:90:60:87:52:a6:1d:0a:cc:80:97: 33:0c:b0:1a:61:a4:25:68:41:e2:35:b7:7f:e1:ad: 99:89:54:64:20:cb:b4:5c:94:98:8d:45:9a:c2:39: 0d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BD:1E:B1:44:80:79:90:13:82:18:03:F9:D5:F8:9C:C1:07:80:66 X509v3 Authority Key Identifier: keyid:2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:55:98:3e:c5:f6:95:d0:63:1b:ef:b7:61:b6:54:18:7f:8c: d9:f4:b1:2b:56:5e:19:49:78:f7:b4:ba:08:9b:5c:3b:b7:30: 66:a0:9e:b9:40:2e:68:35:65:6c:68:39:6a:f7:dc:dc:7b:88: d2:97:83:5f:17:d9:bd:cd:39:f2:64:30:bf:fe:af:4b:5f:28: 3d:f6:72:a1:93:56:c9:8f:88:e0:b3:2e:6b:ae:4f:ec:d4:9b: c1:13:fb:e5:42:d5:91:b5:4f:97:0d:36:e4:fa:84:f5:8b:b6: f0:6a:80:53:23:ff:cf:4f:d6:1f:42:ab:bb:04:06:d9:be:7d: 5d:84:29:66:84:ce:ec:d2:be:8a:0b:96:02:e9:e3:62:ba:19: 0b:56:f0:d4:eb:3c:ba:f7:86:a6:51:f8:32:be:3c:c2:64:1d: 33:e5:0f:95:fe:f7:60:dd:70:a8:67:1c:92:c2:1f:1a:f5:88: ba:09:28:54:71:39:ec:9e:a6:97:8f:d8:5f:54:c6:08:8e:72: f2:91:54:df:ec:37:ad:6c:b9:2c:52:db:02:f0:e7:f9:4f:9d: 2d:e6:2f:0e:43:fb:d2:d1:de:10:e9:ba:11:fa:50:04:42:d2: 6c:f7:7e:e7:89:1f:a1:68:15:78:62:f7:b9:cf:0f:c6:87:5e: c4:cd:40:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFSkiZwA8Rt/laIrRyyzsQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjYWM4NGNlZWM1N2IzNWZhMzk1MzRhZTIzMDA5YWVhODIw MjM5YWEwHhcNMjUxMjIyMDkwMDU0WhcNMjUxMjIzMDkwMDU0WjAzMTEwLwYDVQQD Eyg2NWJkMWViMTQ0ODA3OTkwMTM4MjE4MDNmOWQ1Zjg5Y2MxMDc4MDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsNNdyy0lCq3kdc7pEc+RCoBlqNN wHfWkB2/Wo75uPszLv2RcGJtkx7YMwZd+LT8UP6lUVWpKzhQxBqbV65HSVFEY8sf pOxlN3Iu5dA8VaFwNsVe8o2opvvfKvZ9XzToh0lW6XlX+XP2fD9sIutBpvdsLM3y z26HIP2oaD1lUXw9RJ+iLSzJVeUDI6VJJQAvnKIVwgD81BJ4rhCFtkRcOinjhL5S L9mDB194ulj2ikBuIZZK0hyy/5CRoifCTDZYZPpj3jjf0XLGi3F3rQ+tIzo+Nvuy DJBgh1KmHQrMgJczDLAaYaQlaEHiNbd/4a2ZiVRkIMu0XJSYjUWawjkN1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGW9HrFEgHmQE4IYA/nV+JzBB4BmMB8GA1UdIwQY MBaAFCyshM7sV7Nfo5U0riMAmuqCAjmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEt5RXp1eFhzMS1qbFRTdUl3Q2E2b0lDT2FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82ODdjZDUtNjM0NS00ZjY0LWJlNDYt ZWRlNzBjOGVkNTEzLzEvTEt5RXp1eFhzMS1qbFRTdUl3Q2E2b0lDT2FvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC82ODdjZDUtNjM0NS00ZjY0LWJlNDYtZWRlNzBjOGVkNTEz LzEvTEt5RXp1eFhzMS1qbFRTdUl3Q2E2b0lDT2FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQVWYPsX2 ldBjG++3YbZUGH+M2fSxK1ZeGUl497S6CJtcO7cwZqCeuUAuaDVlbGg5avfc3HuI 0peDXxfZvc058mQwv/6vS18oPfZyoZNWyY+I4LMua65P7NSbwRP75ULVkbVPlw02 5PqE9Yu28GqAUyP/z0/WH0KruwQG2b59XYQpZoTO7NK+iguWAunjYroZC1bw1Os8 uveGplH4Mr48wmQdM+UPlf73YN1wqGccksIfGvWIugkoVHE57J6ml4/YX1TGCI5y 8pFU3+w3rWy5LFLbAvDn+U+dLeYvDkP70tHeEOm6EfpQBELSbPd+54kfoWgVeGL3 uc8PxodexM1AKw== -----END CERTIFICATE-----Generated at Mon Dec 22 10:37:31 2025 by rpki-client